REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'HubSpot'
disclosed a bug submitted by
b'm7mdharoun'
b'Reflected XSS and Server Side Template Injection in all HubSpot CMSes'
11 Sep 2018
b'Grabtaxi Holdings Pte Ltd'
disclosed a bug submitted by
b'xsam'
b'Leaking sensitive information on Github lead full access to all Grab Slack channels '
11 Sep 2018
b'Zomato'
disclosed a bug submitted by
b'gerben_javado'
b'[www.zomato.com] SQLi - /php/?????????? - item_id'
11 Sep 2018
b'Zomato'
disclosed a bug submitted by
b'shivasurya'
b'Phishing user to download malicious app could lead to leakage of User Access Token, Email, Name and Profile photo via exported RemoteService'
11 Sep 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'becojo'
b'[express-cart] Customer and admin email enumeration through MongoDB injection'
10 Sep 2018
b'Ubiquiti Networks'
disclosed a bug submitted by
b'smiegles'
b'Public Jenkins instance with /script enabled'
10 Sep 2018
b'Weblate'
disclosed a bug submitted by
b'str33'
b'Open port leads to information disclosure'
10 Sep 2018
b'LocalTapiola'
disclosed a bug submitted by
b'lovepakistan'
b'User Information Disclosure via the REST API - /?_method=GET'
10 Sep 2018
b'LocalTapiola'
disclosed a bug submitted by
b'lovepakistan'
b'F5 BigIP Backend Cookie Disclosure'
10 Sep 2018
b'LocalTapiola'
disclosed a bug submitted by
b'linkks'
b'WordPress username enumeration (/author)'
09 Sep 2018
b'Mavenlink'
disclosed a bug submitted by
b'rashedhasan007'
b'Participation of expired account holders in Projects can occure financial loss to Mavenlink '
09 Sep 2018
b'Informatica'
disclosed a bug submitted by
b'panckazzz'
b'Reflected XSS '
09 Sep 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'douglas_hall'
b'[ascii-art] Command injection'
08 Sep 2018
b'Reverb.com'
disclosed a bug submitted by
b'kiyell'
b'XSS in buying and selling pages, can created spoofed content (false login message)'
08 Sep 2018
b'Reverb.com'
disclosed a bug submitted by
b'kiyell'
b'XSS in main search, use class tag to imitate Reverb.com core functionality, create false login window'
08 Sep 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'cris_semmle'
b'Command Injection is ps Package'
07 Sep 2018
b'Twitter'
disclosed a bug submitted by
b'ngalog'
b'Account Takeover in Periscope TV'
06 Sep 2018
b'Khan Academy'
disclosed a bug submitted by
b'rootbakar'
b'SignUp With Fake Email'
05 Sep 2018
b'Zomato'
disclosed a bug submitted by
b'emitrani'
b'IDOR to delete images from other stores'
05 Sep 2018
b'Khan Academy'
disclosed a bug submitted by
b'rootbakar'
b"Stored 'undefined' Cross-site Scripting"
05 Sep 2018
1
...
394
395
396
397
398
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM